IBM Support

Security Bulletin: IBM System Networking Products not affected by the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278)

Created by Igets Administrator on
Published URL:
https://www.ibm.com/support/pages/node/865310
865310

Security Bulletin


Summary

IBM System Networking Products are not vulnerable to the Bash vulnerabilities that have been referred to as “Bash Bug” or “Shellshock” and the two memory corruption vulnerabilities.

Vulnerability Details

Abstract

IBM System Networking Products are not vulnerable to the Bash vulnerabilities that have been referred to as “Bash Bug” or “Shellshock” and the two memory corruption vulnerabilities.

Content

  • The following is a list of specific IBM System Networking products, all editions and all platforms are NOT vulnerable to the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278).

  • IBM System Networking Management
    • IBM System Networking Switch Center
    • IBM System Networking Element Manager

  • IBM RackSwitch Products
    • IBM RackSwitch G7028
    • IBM RackSwitch G8000
    • IBM RackSwitch G8052
    • IBM RackSwitch G8124E
    • IBM RackSwitch G8124
    • IBM RackSwitch G8264
    • IBM RackSwitch G8264T
    • IBM RackSwitch G8264CS
    • IBM RackSwitch G8316
    • IBM RackSwitch G8332

  • IBM BladeCenter Products                                       
    • IBM BladeCenter Virtual Fabric 10Gb Switch Module
    • IBM BladeCenter iFlow Director
    • IBM BladeCenter 1/10Gb Uplink Ethernet Switch Module
    • IBM BladeCenter Layer 2/3 Gb Ethernet Switch Module
    • IBM BladeCenter Intelligent Copper Pass-Thru Module
    • IBM BladeCenter Server Connectivity Module
    • IBM BladeCenter Layer 2/7 Ethernet Switch Module

  • IBM Flex System Products
    • IBM® Flex System® Interconnect Fabric
    • IBM Flex System Fabric SI4093 System Interconnect Module
    • IBM Flex System Fabric EN4093R 10Gb Scalable Switch
    • IBM Flex System Fabric EN4093 10Gb Scalable Switch
    • IBM Flex System Fabric CN4093 10Gb Converged Scalable Switch
    • IBM Flex System EN2092 1Gb Ethernet Scalable Switch
    • IBM Flex System EN4091 10Gb Ethernet Pass-Thru Module

 

Remediation:

No action required.

Change History
September 26, 2014: Original Copy Published

 

 

Get Notified about Future Security Bulletins

Subscribe to My Notifications to be notified of important product support alerts like this.

References

Complete CVSS v3 Guide
On-line Calculator v3

On

Related Information

IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

Document Location

Worldwide

Operating System

BladeCenter:Operating system independent / None

System x Hardware Options:Operating system independent / None

PureFlex System and Flex System:Operating system independent / None

Converged switches:All operating systems listed

[{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW20M","label":"BladeCenter->BladeCenter T Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW20T","label":"BladeCenter->BladeCenter E Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW20U","label":"System x Hardware Options->BladeCenter Switch Module"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"HW21Y","label":"BladeCenter H Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB57","label":"Power"}},{"Type":"HW","Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"HW22P","label":"BladeCenter S Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB57","label":"Power"}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW22Q","label":"BladeCenter->BladeCenter HT Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB57","label":"Power"}},{"Type":"HW","Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"HW22P","label":"BladeCenter S Chassis"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB57","label":"Power"}},{"Type":"HW","Business Unit":{"code":"BU056","label":"Miscellaneous"},"Product":{"code":"HW949","label":"PureFlex System and Flex System->Fabric Manager"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB18","label":"Miscellaneous LOB"}},{"Type":"HW","Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SG9VCJ","label":"Power System G Series Rackswitch"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB08","label":"Cognitive Systems"}}]

Document Information

Modified date:
14 April 2023

UID

ibm1MIGR-5096295

Page Feedback